Software Detail

Software Informaton Top

Encryption

Software Detail

Openssh

Number Of NVD

113

CRITICAL

HIGH

MEDIUM

LOW

URL	https://www.openssh.com/
Explanation	It is an SSH implementation developed by the OpenBSD project and used on many Unix and Linux systems. It can also be used on Windows, as the OpenSSH client can be easily installed.
Tag	BSD License オープンソース

Add Information URL

No	Type	Name	URL
1			https://anongit.mindrot.org/openssh

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
61	OpenSSH 9	9.9p2	Feb. 18, 2025	April 8, 2022	2	2	5	0
62	OpenSSH 8	8.9	Feb. 23, 2022	April 17, 2019	2	7	6	1
63	OpenSSH 7	OpenSSH 7.9	Oct. 19, 2018	Aug. 11, 2015	2	12	17	1
64	OpenSSH 6	OpenSSH 6.9	July 1, 2015	April 22, 2012	2	14	23	2
65	OpenSSH 5	OpenSSH 5.9	Sept. 6, 2011	April 3, 2008	2	12	22	6
66	OpenSSH 4	OpenSSH 4.9	March 31, 2008	March 9, 2005	2	18	30	9
67	OpenSSH 3	OpenSSH 3.9	Aug. 18, 2004	Nov. 6, 2001	4	28	30	7
68	OpenSSH 8.4	8.4			1	3	5	1
69	OpenSSH 8.3	8.3			1	4	5	1
70	OpenSSH 8.2	8.2			1	5	5	1
71	OpenSSH 8.1	8.1			1	3	5	1
72	OpenSSH 8.0	8.0			1	4	5	1
73	OpenSSH 7.9	7.9			1	4	9	1
74	OpenSSH 7.8	7.8			1	4	10	1
75	OpenSSH 7.7	7.7			1	4	11	1
76	OpenSSH 7.6	7.6			1	3	11	1
77	OpenSSH 7.5	7.5			1	3	12	1
78	OpenSSH 7.4	7.4			1	3	12	1
79	OpenSSH 7.3	7.3			1	8	13	1
80	OpenSSH 7.2	7.2p2	March 10, 2016		1	10	15	1
81	OpenSSH 7.1	7.1p2	Jan. 14, 2016		2	11	17	1
82	OpenSSH 7.0	7.0			2	11	17	1
83	OpenSSH 6.9	6.9			2	13	18	2
84	OpenSSH 6.8	6.8			2	13	19	2
85	OpenSSH 6.7	6.7			2	11	17	2
86	OpenSSH 6.6	6.6			2	11	18	2
87	OpenSSH 6.5	6.5			2	11	19	2
88	OpenSSH 6.4	6.4			2	12	19	2
89	OpenSSH 6.3	6.3			2	12	20	2
90	OpenSSH 6.2	6.2p2	May 16, 2013		2	12	20	2
91	OpenSSH 6.1	6.1			2	11	20	2
92	OpenSSH 6.0	6.0			2	11	20	2
93	OpenSSH 5.9	5.9			2	11	20	2
94	OpenSSH 5.8p2	5.8p2			2	10	19	2
95	OpenSSH 5.8	5.8p2	May 3, 2011		2	11	20	4
96	OpenSSH 5.7	5.7			2	11	21	4
97	OpenSSH 5.6	5.6			2	12	20	5
98	OpenSSH 5.5	5.5			2	12	19	5
99	OpenSSH 5.4	5.4			2	12	19	5
100	OpenSSH 5.3	5.3			2	11	19	5
101	OpenSSH 5.2	5.2			2	11	19	5
102	OpenSSH 5.1	5.1			2	11	19	5
103	OpenSSH 5.0	5.0			2	11	19	6
104	OpenSSH 4.9	4.9			2	11	19	6
105	OpenSSH 4.8	4.8			2	11	21	6
106	OpenSSH 4.7p1	4.7p1			2	11	18	7
107	OpenSSH 4.7	4.7			2	11	20	7
108	OpenSSH 4.6	4.6			2	12	21	6
109	OpenSSH 4.5	4.5			2	14	22	7
110	OpenSSH 4.4p1	4.4p1			2	12	21	6
111	OpenSSH 4.4	4.4			2	15	21	6
112	OpenSSH 4.3p2	4.3p2			2	12	22	6
113	OpenSSH 4.3p1	4.3p1			2	13	21	6
114	OpenSSH 4.3	4.3p2	Feb. 11, 2006		2	16	24	6
115	OpenSSH 4.2p1	4.2p1			2	13	22	6
116	OpenSSH 4.2	4.2			2	16	22	6
117	OpenSSH 4.1p1	4.1p1			2	13	23	6
118	OpenSSH 4.1	4.1			2	16	23	7
119	OpenSSH 4.0p1	4.0p1			2	13	23	6
120	OpenSSH 4.0	4.0			2	16	25	6
121	OpenSSH 3.9	3.9.1p1			2	16	24	7
122	OpenSSH 3.8	3.8.1p1			2	16	25	7
123	OpenSSH 3.7	3.7.1p2			2	21	25	7
124	OpenSSH 3.6	3.6.1p2			2	21	26	7
125	OpenSSH 3.5p1	3.5p1			2	17	24	7
126	OpenSSH 3.5	3.5			2	20	26	7
127	OpenSSH 3.4p1	3.4p1			2	17	24	7
128	OpenSSH 3.4	3.4			2	20	26	7
129	OpenSSH 3.3p1	3.3p1			2	18	24	7
130	OpenSSH 3.3	3.3			3	21	26	7
131	OpenSSH 3.2	3.2.3p1			3	23	26	7
132	OpenSSH 3.1p1	3.1p1			2	18	24	7
133	OpenSSH 3.1	3.1			3	22	26	7
134	OpenSSH 3.0p1	3.0p1			2	19	24	7
135	OpenSSH 3.0	3.0.2p1			4	24	27	7
136	OpenSSH 2.9p2	2.9p2			4	23	23	6
137	OpenSSH 2.9p1	2.9p1			4	23	23	6
138	OpenSSH 2.9	2.9p2	June 17, 2001		3	27	24	6
139	OpenSSH 2.5	2.5.2p2	March 22, 2001		3	27	24	6
140	OpenSSH 2.3	2.3.0p1	Nov. 6, 2000		3	27	25	6
141	OpenSSH 2.2	2.2.0p1	Sept. 1, 2000		3	29	24	6
142	OpenSSH 2.1	2.1.1p4	July 16, 2000		3	29	25	6
143	OpenSSH 2	OpenSSH 2.9.9	Sept. 25, 2001		4	30	26	6
144	OpenSSH 1.5	1.5.8			2	23	22	6
145	OpenSSH 1.3	1.3			2	23	22	6
146	OpenSSH 1.2	1.2.3p1	March 24, 2000		2	27	28	7
147	OpenSSH 1	OpenSSH 1.2.3p1	March 24, 2000		2	27	28	7
148	OpenSSH -	-			2	22	24	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or less	Update date Published date	Show Affected	Exploit PoC Search
61	- 6.5	MEDIUM	OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-1657	cpe:2.3:a:openbsd:openssh:4.8:* cpe:2.3:a:openbsd:openssh:4.7:* cpe:2.3:a:openbsd:openssh:4.6:* cpe:2.3:a:open…		2026-04-23 09:35 2008-04-3	Show	GitHub Exploit DB Packet Storm

62	- 6.9	MEDIUM	OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-1483	cpe:2.3:a:openbsd:openssh:4.3p2:*		2026-04-23 09:35 2008-03-25	Show	GitHub Exploit DB Packet Storm

63	- 4.3	MEDIUM	Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an a…	NVD-CWE-noinfo	CVE-2007-3102	cpe:2.3:a:openbsd:openssh:4.3p2:*		2026-04-23 09:35 2007-10-19	Show	GitHub Exploit DB Packet Storm

64	- 7.5	HIGH	ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privile…	CWE-20 Improper Input Validation	CVE-2007-4752	cpe:2.3:a:openbsd:openssh:4.5:* cpe:2.3:a:openbsd:openssh:4.4p1:* cpe:2.3:a:openbsd:openssh:4.4:* cpe:2.3:a:op…	4.6	2026-04-23 09:35 2007-09-12	Show	GitHub Exploit DB Packet Storm

65	- 5.0	MEDIUM	Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of servic…	CWE-399 Resource Management Errors	CVE-2007-4654	cpe:2.3:a:openbsd:openssh:3.0.2p1:*		2026-04-23 09:35 2007-09-5	Show	GitHub Exploit DB Packet Storm

66	- 5.0	MEDIUM	OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a…	CWE-287 Improper Authentication	CVE-2007-2243	cpe:2.3:a:openbsd:openssh:4.6:* cpe:2.3:a:openbsd:openssh:4.5:* cpe:2.3:a:openbsd:openssh:4.4p1:* cpe:2.3:a:op…		2026-04-23 09:35 2007-04-26	Show	GitHub Exploit DB Packet Storm

67	- 7.5	HIGH	Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass auth…	NVD-CWE-Other	CVE-2006-5794	cpe:2.3:a:openbsd:openssh::	4.4	2026-04-23 09:35 2006-11-9	Show	GitHub Exploit DB Packet Storm

68	- 2.6	LOW	OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies…	CWE-200 Information Exposure	CVE-2006-5229	cpe:2.3:a:openbsd:openssh:4.1:*		2026-04-23 09:35 2006-10-11	Show	GitHub Exploit DB Packet Storm

69	- 5.0	MEDIUM	packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be …	NVD-CWE-Other	CVE-2006-4925	cpe:2.3:a:openbsd:openssh:4.5:*		2026-04-23 09:35 2006-09-29	Show	GitHub Exploit DB Packet Storm

70	8.1 9.3	HIGH Network	Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecif…	CWE-415 Double Free	CVE-2006-5051	cpe:2.3:a:openbsd:openssh::	4.4	2026-04-23 09:35 2006-09-28	Show	GitHub Exploit DB Packet Storm